<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
    <head>
        <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
        <title>ModSecurity Single Audit Log Parser (MSALParser) Test Page</title>
        <style>
        body{
            font-family: Georgia;
        }
        p{
            margin-left: 70px;
            margin-right: 70px;
        }
        </style>
    </head>
    <body>
      <center>
        <br/>
        <h2>ModSecurity Single Audit Log Parser (MSALParser) Test Page</h2>
        <p>Bedirhan Urgun &lt;urgunb@hotmail.com&gt;, 23 May 2008</p>      
        <br/>
        <a href="MSALParserTest.php">MSALParserTest</a> <br/><br/>
        <a href="MSALHeaderParserTest.php">MSALHeaderParserTest</a> <br/><br/>
        <a href="MSALRequestHeadersParserTest.php">MSALRequestHeadersParserTest</a> <br/><br/>
        <a href="MSALRequestBodyParserTest.php">MSALRequestBodyParserTest</a> <br/><br/>
        <a href="MSALResponseHeadersParserTest.php">MSALResponseHeadersParserTest</a> <br/><br/>
        <a href="MSALResponseBodyParserTest.php">MSALResponseBodyParserTest</a> <br/><br/>
        <a href="AlertMessageParserTest.php">AlertMessageParserTest</a> <br/><br/>
        <a href="MSALTrailerParserTest.php">MSALTrailerParserTest</a> <br/><br/>
       </center>
       <br/><br/>
       <p>
        <b>mlogc</b> is a C program, distributed along with <b>ModSecurity</b>, that 
        is used to send, in realtime, audit logs ModSecurity produces to a sensor
        through an RPC call (HTTP PUT method). In <b>weBekci</b>, we'll use a PHP
        RPC end for this purpose that will get <b>mlogc</b>'s calls and parses it 
        to an object and eventually write to a persistent data store (db). 
       </p>
       <p>
        <b>MSALParser</b> is a subproject in weBekci, which implements necessary 
        parsers and model objects to represent a ModSecurity Single Audit Log,
        hence the name <b>MSAL</b>.
       </p>
       <p>
        Most likely in early versions (or maybe always), weBekci will live in the
        same host as ModSecurity installation. So, mlogc will make localhost 
        rpc requests. But when the time comes, it'll be easy to port this to support
        remote rpc requests with MSALParser project being a PHP rpc end.
       </p>
       <p><b>NOTE:</b> part of include_path in php.ini; classes;..\classes;persistent;..\persistent
       </p>
    </body>
</html>
